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Amendments to the Claims 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims 

Claim 1 (currently amended): A method for authenticating a sender of a digital object, 
comprising: 

recognizing a peer-to-peer (P2P) communication between a first client and a second 
client, said first client attempting to exchange information securely with said second client via 
the P2P communication without a third party mediation, said third party mediation including 
certificate authorities; 

establishing an electronic mail protocol communication between the first client and the 
second client after the P2P communication is recognized , said c-mail protocol communication^ ,]] 
being separate from the P2P communication, comprising said c-mail protocol communication 
being established by Simple Mail Transport Protocol (SMTP); 

generating a first unique identifier (UID); 

transmitting from the first client to a previously known address of the second client, via 
the established electronic mail protocol communication , a first electronic mail (e-mail) message 
comprising the first UID; 

receiving from the second client, via the electronic mail protocol communication , a 
second e-mail message directed to the first client , said second e-mail message comprising a 
second UID and a copy of the first UID; 

verifying the copy of the first UID is identical to the first UID at the first client; and 

transmitting from the first client to the previously known address of the second client, via 
the electronic mail protocol communication , a third e-mail message to the second client 
comprising a copy of the second UID; 

wherein at least one of the e-mail messages transmitted to the previously known address 
between the first client and the second client further comprises the digital object, said digital 
object being used for authenticating the information to be exchanged between the first client and 
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the second client via the P2P communication and not [[for]] authenticating the first e-mail 
message, the second e-mail message, or the third e-mail message. 

Claim 2 (original): The method of claim 1 wherein the first message further comprises the digital 
object. 

Claim 3 (original): The method of claim 1 wherein the third message further comprises the 
digital object. 

Claim 4 (original): The method of claim 1 wherein the digital object is a public key for a 
cryptographic system. 

Claim 5 (previously presented): The method of claim 4 wherein the second message further 
comprises a second public key for the cryptographic system. 

Claims 6-7 (canceled). 

Claim 8 (original): The method of claim 1 wherein the first U1D contains at least 128 bits. 

Claim 9 (currently amended): A method for authenticating a sender of a digital object, 
comprising: 

recognizing a peer-to-peer (P2P) communication between a first client and a second 
client, said first client attempting to exchange information securely with said second client via 
the P2P communication without a third party mediation, said third party mediation including 
certificate authorities; 

establishing an electronic mail protocol communication between the first client and the 
second client, said e-mail protocol communication^ ,]] being separate from the P2P 
communication, comprising said e-mail protocol communication being established by Simple 
Mail Transport Protocol (SMTP); 

receiving from the first client, via the established electronic mail protocol communication , 
a first electronic mail (e-mail) message comprising a first unique identifier (UID); 
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generating a second UID at the second client; 

transmitting from the second client to a previously known address of the first client, via 
the electronic mail protocol communication , a second e-mail message comprising the second 
UID and a copy of the first UID; 

receiving conformation from the first client for verifying the copy of the first UID is 
identical to the first UID at the first client; and 

receiving at the second client, via the electronic mail protocol communication , a third e- 
mail message comprising a copy of the second UID from the first client after the first client has 
verified the copy of the first UID ; 

wherein at least one of the e-mail messages received further comprises the digital object, 
said digital object being used for authenticating the information to be exchanged between the 
first client and the second client via the P2P communication and not [[for]] authenticating the 
first e-mail message, the second e-mail message, or the third e-mail message. 

Claim 10 (original): The method of claim 9 wherein the first message further comprises the 
digital object. 

Claim 1 1 (original): The method of claim 9 wherein the third message further comprises the 
digital object. 

Claim 12 (original): The method of claim 9 wherein the digital object is a public key for a 
cryptographic system. 

Claim 13 (previously presented): The method of claim 12 wherein the second electronic mail 
message further comprises a second public key for the cryptographic system. 

Claims 14-15 (canceled). 

Claim 16 (original): The method of claim 9 wherein the first UID contains at least 128 bits. 
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Claim 17 (currently amended): A compute r readable storage medium including computer- 
executable instructions facilitating authenticating a sender of a digital object, computer- 
executable instructions executing the steps of: 

recognizing a peer-to-peer (P2P) communication between a first client and a second 
client, said first client attempting to exchange information securely with said second client via 
the P2P communication without a third party mediation, said third party mediation including 
certificate authorities; 

establishing an electronic mail protocol communication between the first client and the 
second client, said e-mail protocol communication!" I" ,]] being separate from the P2P 
communication, comprising said e-mail protocol communication being established by Simple 
Mail Transport Protocol (SMTP); 

generating a first unique identifier (UID); 

transmitting from the first client to a previously known address of the second client, via 
the established electronic mail protocol communication , a first electronic mail (e-mail) message 
comprising the first UID; 

receiving from the second client, via the electronic mail protocol communication , a 
second e-mail message directed to the first client comprising a second UID and a copy of the 
first UID; 

verifying the copy of the first UID is identical to the first UID at the first client; and 
transmitting from the first client to the previously known address, via the electronic mail 

protocol communication , a third e-mail message to the second client comprising a copy of the 

second UID; 

wherein at least one of the messages transmitted to the previously known address further 
comprises the digital object, said digital object including being used for authenticating the 
information to be exchanged between the first client and the second client via the P2P 
communication and not [[for]] authenticating the first e-mail message, the second e-mail 
message, or the third e-mail message. 

Claim 18 (currently amended): The compute r readable storage medium of claim 17 wherein the 
digital object is a public key for a cryptographic system. 
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Claim 19 (currently amended): The compute r readable storage medium of claim 18 wherein the 
second message further comprises a second public key for the cryptographic system. 

Claim 20 (currently amended): An apparatus for authenticating a sender of a digital object 
securely exchanging a public key without third party mediation , comprising: 

a random number generator generating a first unique identifier (UID); 

a network interface recognizes recognizing a peer-to-peer (P2P) communication between 
a first client and a second client, said first client attempting to exchange information a public key 
securely with said second client via the P2P communication without a third party mediation, said 
third party mediation including certificate authorities ; 

wherein the network interface establishes an electronic mail protocol communication 
between the first client and the second client, said e-mail protocol[[,]] being separate from the 
P2P communication, comprising said e-mail protocol communication being established by 
Simple Mail Transport Protocol (SMTP); 

wherein the network interface transmits to a previously known address associated with 
the second client , via the established electronic mail (e-mail) protocol communication , a first e- 
mail message comprising the first UID; 

wherein the network interface receives, via the electronic mail protocol communication , a 
second e-mail message transmitted to a previously known address associated with the first client, 
said second e-mail message comprising a second UID and a copy of the first UID, wherein the 
copy of the first UID and is compared to the first UID is compared for verification thereof ; and 

wherein the network interface transmits to the previously known address associated with 
the second client , via the electronic mail protocol communication , a third e-mail message 
comprising a copy of the second UID , wherein the copy of the second UID is compared to the 
second UID for verification thereof ; and 

wherein at least one of the e-mail messages transmitted to the previously known address 
associated with the second client further comprises the digital object, said digital object 
comprises a public key used for authenticating by which the information to be exchanged 
between the first client and the second client via the P2P communication is secured and not [[for]] 
authenticating the first e-mail message, the second e-mail message, or the third e-mail message. 
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Claim 21 (new): The method of claim 1, further comprising, at the first client, using the e-mail 
address from the second client to index the first UID after verifying the copy of the first UID is 
identical to the first UID at the first client. 

Claim 22 (new): The method of claim 9, further comprising, at the second client, verifying the 
copy of the second UID is identical to the second UID at the second client and using the e-mail 
address from the first client to index the second UID after verifying. 



